From c9b7588cb3a7ed7346602bf56130ee9075ce667f Mon Sep 17 00:00:00 2001
From: Diamantis Kourkouzelis <diamantis@endor.ai>
Date: Thu, 24 Oct 2024 16:05:03 -0700
Subject: [PATCH 1/2] install semgrep for SAST run

---
 .github/workflows/sast-test.yaml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/.github/workflows/sast-test.yaml b/.github/workflows/sast-test.yaml
index d39b150..0ad4d1a 100644
--- a/.github/workflows/sast-test.yaml
+++ b/.github/workflows/sast-test.yaml
@@ -33,6 +33,20 @@ jobs:
       - name: Checkout Repository
         uses: actions/checkout@v3
 
+      - name: Set up Python
+        uses: actions/setup-python@v2
+        with:
+          python-version: "3.x" # Ensure you use a valid Python version
+
+      - name: Install Semgrep
+        run: |
+          python -m pip install --upgrade pip
+          pip install semgrep
+
+      - name: Semgrep version
+        run: |
+          semgrep --version
+
       - name: Endor Labs SAST Code Scan
         uses: endorlabs/github-action@cd1341287bbe6dba282277a8ae4dc4847008a660
         with:

From c0f83ffed5193c525b5ee1e7131b8b23abccded6 Mon Sep 17 00:00:00 2001
From: Diamantis Kourkouzelis <diamantis@endor.ai>
Date: Thu, 24 Oct 2024 16:08:42 -0700
Subject: [PATCH 2/2] disable dependencies scan

---
 .github/workflows/sast-test.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/sast-test.yaml b/.github/workflows/sast-test.yaml
index 0ad4d1a..92c983d 100644
--- a/.github/workflows/sast-test.yaml
+++ b/.github/workflows/sast-test.yaml
@@ -55,4 +55,5 @@ jobs:
             scan_summary_output_type: "table"
             pr: "false"
             enable_github_action_token: "true"
-            scan_sast: "true"
\ No newline at end of file
+            scan_sast: "true"
+            scan_dependencies: "false"
\ No newline at end of file